Windows OLE

CVE-2022-34731: Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

**How could an attacker exploit this vulnerability?** An attacker could exploit the vulnerability by tricking an authenticated user into attempting to connect to a malicious SQL server via OLEDB, which could result in the server receiving a malicious networking packet. This could allow the attacker to execute code remotely on the client.

2 years ago

Microsoft Security Response Center

Open in Source

#sql #vulnerability #web #microsoft #rce #auth #Windows OLE #Security Vulnerability

CVE-2022-35835: Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

**How could an attacker exploit this vulnerability?** An attacker could exploit the vulnerability by tricking an authenticated user into attempting to connect to a malicious SQL server via OLEDB, which could result in the server receiving a malicious networking packet. This could allow the attacker to execute code remotely on the client.

2 years ago

Microsoft Security Response Center

Open in Source

#sql #vulnerability #web #microsoft #rce #auth #Windows OLE #Security Vulnerability

CVE-2022-35834: Microsoft OLE DB Provider for SQL Server Remote Code Execution Vulnerability

**How could an attacker exploit this vulnerability?** An attacker could exploit the vulnerability by tricking an authenticated user into attempting to connect to a malicious SQL server via OLEDB, which could result in the server receiving a malicious networking packet. This could allow the attacker to execute code remotely on the client.

2 years ago

Microsoft Security Response Center

Open in Source

#sql #vulnerability #web #microsoft #rce #auth #Windows OLE #Security Vulnerability

Tag

#Windows OLE